E-commerce Chargebacks: The Complete Merchant Guide

Why E-commerce Chargeback Rates Are Higher

Card-not-present (CNP) transactions — any purchase where the card isn't physically swiped or tapped — carry structurally higher chargeback risk than card-present transactions for several reasons:

No physical verification. In a card-present transaction, the merchant sees the card, often sees the cardholder's ID, and has a PIN or chip authentication record. In a CNP transaction, the merchant has only card number, expiry, and CVV — data that can be stolen and used without the cardholder's knowledge.

Liability default. Without 3D Secure authentication on a CNP transaction, the merchant typically bears full fraud liability. If a cardholder claims their card was used without authorisation, the chargeback burden falls on the merchant unless they can prove authorisation. In a card-present chip transaction, the opposite is true — chip authentication shifts fraud liability to the issuer.

Easier dispute initiation. Online banking and mobile apps make filing a dispute a 30-second process — far easier than visiting a bank branch. The low friction of digital dispute filing means customers who would previously have called the merchant directly now reach their bank first.

Delivery gap. E-commerce purchases involve a delay between payment and goods receipt, creating a window for disputes about non-delivery. Physical retail closes this window entirely.

Industry benchmarks suggest average CNP chargeback rates of 0.5–1.2% across e-commerce, with higher rates in digital goods, subscriptions, travel, and luxury goods. Card-present retail typically runs below 0.1%.

The Most Common E-commerce Dispute Types

E-commerce disputes cluster into recognisable patterns. Understanding the frequency of each type at your specific business shapes how you prioritise prevention and response investments.

Goods Not Received

Consistently the largest single dispute category for physical goods merchants. The cardholder claims the package was never delivered. Some of these disputes are genuine (lost in transit, delivered to wrong address); many are friendly fraud (received the goods, disputing anyway). The common factor is absence of delivery confirmation — merchants without tracking data cannot contest effectively.

Fraud (Card-Not-Present)

The cardholder claims their card was used without authorisation. True fraud — stolen card credentials used by a criminal — is common in e-commerce, particularly for high-value or easily resellable items (electronics, gift cards, luxury goods). Without 3DS authentication, merchants bear full liability for true fraud chargebacks. With 3DS, liability shifts to the issuing bank.

Not as Described

The customer claims the product or service differed materially from the listing. Common with digital products, clothing (size/colour disputes), custom items, and services. Merchants who maintain detailed product specifications, photographs, and order confirmation records can contest these effectively.

Cancelled Subscription

The customer disputes a recurring charge, claiming they cancelled or never authorised the subscription. Particularly prevalent for SaaS, streaming, and subscription box businesses. Prevention through renewal reminders and one-click cancellation flows is more effective than response here.

Duplicate Transaction

A processing error charges the customer twice. These are merchant errors — the appropriate response is an immediate refund before the chargeback is filed, not a representment. Monitoring for duplicate transactions in real time prevents this category entirely.

E-commerce Fraud Patterns

Professional fraud in e-commerce follows patterns that can be identified and blocked with the right signals. Understanding these patterns reduces true fraud chargebacks and the operational cost of managing them.

Card testing: Criminals test stolen card credentials with small transactions before using the card for larger purchases. A spike in low-value, declined transactions from a single IP or device is a card testing signal. Payment processors with velocity rules (Stripe Radar, Shopify Fraud Analysis) flag this pattern automatically.

Account takeover: Criminals access legitimate customer accounts (via phishing or credential stuffing) and change shipping addresses before ordering. Post-account-update orders to new addresses are higher-risk and warrant additional verification.

Reshipping fraud: Criminals ship goods to mules at domestic addresses, who forward them internationally, avoiding international shipping restrictions. Orders to known reshipping or freight-forwarding addresses are high-risk.

Triangulation fraud: A criminal sells goods on a marketplace, collects payment from the buyer, and fulfils using a stolen card — leaving the legitimate cardholder to dispute the charge and the marketplace buyer to receive the goods without direct fraud exposure.

Platform-Specific Chargeback Tools

The chargeback tools available to you depend significantly on which payment processor you use. The major e-commerce processors have different dispute management workflows, fraud tools, and coverage programmes.

Shopify Payments

Shopify Protect covers eligible transactions against fraud chargebacks at no additional cost. Shopify's fraud analysis assigns a risk score to each order and flags high-risk signals. The dispute management portal in Shopify admin handles evidence submission directly. Shopify payments supports 3DS on applicable card types by default, providing liability shift on authenticated transactions.

Stripe

Stripe Radar applies machine learning to score every transaction in real time. Stripe's Early Fraud Warning (EFW) system provides advance notice of potential chargebacks before they are formally filed — creating a window for proactive refunds that prevent the chargeback fee and ratio impact. Stripe's Radar for Fraud Teams allows custom rule creation (country blocks, 3DS triggers, velocity rules). Stripe's dispute portal provides evidence templates and submission workflows by dispute reason.

PayPal

PayPal has its own dispute resolution process separate from card network chargebacks. PayPal Seller Protection covers eligible transactions against unauthorised transaction claims and Item Not Received claims. Seller Protection requires transaction-specific conditions: confirmed payment address, proof of shipment, delivery confirmation. PayPal disputes that escalate to chargeback level (when the cardholder goes to their bank rather than PayPal) follow standard card network rules.

WooCommerce / Other Processors

WooCommerce merchants typically process via a gateway plugin (Stripe, PayPal, Square, Adyen). The dispute management experience depends on the underlying gateway, not WooCommerce itself. Fraud prevention relies on the gateway's tools plus optional WooCommerce anti-fraud plugins. The core prevention measures — 3DS2, AVS, CVV, delivery confirmation — are gateway-level settings, not WooCommerce features.

Chargeback Prevention for E-commerce

Prevention is more cost-efficient than response for e-commerce merchants — eliminating the fee, the ratio impact, and the operational overhead simultaneously. The highest-leverage measures for CNP merchants:

Enable 3DS2. Authenticating transactions shifts fraud liability to the issuer on every authenticated transaction. For high-ticket items and high-risk orders, 3DS2 eliminates the most common and hardest-to-win dispute category entirely. Frictionless 3DS adds no friction for the customer and shifts liability just as effectively as a challenge flow.

Use tracked shipping for all orders above $15. Without carrier tracking data, "goods not received" disputes are very difficult to contest. Tracked shipping for every order above a minimal threshold is a cost-effective investment against the most common dispute category.

Fix your billing descriptor. A descriptor that shows your holding company name or payment processor prefix ("SQ *", "PYMT*") instead of your brand name drives a significant proportion of "unrecognised charge" disputes. Updating the descriptor to your exact brand name is the lowest-cost, highest-leverage prevention change available.

Send proactive order and delivery communications. Shipping notifications and delivery confirmations — timed to carrier events — prevent "goods not received" disputes before they form in the customer's mind. Subscription renewal reminders (7 days before charge, with amount, date, and cancellation link) prevent the majority of "cancelled subscription" disputes.

Respond to customer service requests within 24 hours. The window between "customer has a problem" and "customer calls their bank" is often 24–48 hours for e-commerce. Catching and resolving issues within that window prevents chargebacks that would otherwise be unavoidable.

Chargeback Rate Benchmarks for E-commerce

Industry benchmarks vary by category, but general e-commerce chargeback rates typically fall in these ranges:

• General merchandise: 0.3–0.7%
• Digital goods and software: 0.6–1.4%
• Subscription SaaS: 0.5–1.2%
• Travel and hospitality: 0.8–2.0%
• Electronics and luxury goods: 0.5–1.5%
• Nutraceuticals and health products: 1.0–2.5%
• Adult content and gambling: 1.5–3.0%+

The card network monitoring thresholds — 0.9% for Visa Standard, 1.5% for Mastercard ECM — apply regardless of category. High-risk categories structurally push merchants closer to these thresholds, requiring more aggressive prevention investment and often more sophisticated fraud tools than general merchandise merchants need.

Managing Chargebacks at Scale

For e-commerce merchants processing more than a few hundred transactions per month, chargeback management becomes a systematic operational challenge — not an occasional problem. Each dispute requires: deadline tracking, reason code identification, evidence gathering from multiple sources (carrier, payment processor, customer service), response drafting, and submission.

At 10–20 disputes per month, in-house management is feasible but time-consuming. At 50+ disputes per month, the operational overhead typically justifies either specialised software or outsourced management. The economics of outsourced chargeback management — at $10 per case — are generally compelling relative to internal management costs once volume exceeds 20–30 cases per month.